[blfs-dev] CA Certificates
bruce.dubbs at gmail.com
Thu Mar 6 09:15:33 PST 2014
Henrik /KaarPoSoft wrote:
> Dear all,
> you indicate to download CA Certificates from:
> However, on the "mxr frontpage"
> the branch "Mozilla CVS"
> is described as follows:
> This contains the entire current CVS repository.
> For Gecko, XULRunner, and Firefox, CVS trunk is no longer the trunk,
> and is instead used for Gecko 1.9 / Firefox 3 and the 1.9.0.* / 3.0.*
> security releases.
> So I would like to suggest that alternative sources may be described a well.
> See e.g.
> (You are more that welcome to link to this page, if you find it
> We are not the only ones struggling to figure out which branch to use.
> See e.g. the thread started here:
> The integrity of the certdata.txt file is essential,
> so I would also like to suggest that
> 1) you download from https://hg.mozilla.org/...
> 2) you include a sha256 checksum for the file.
It would seem that
is correct right now, but I don't see a way to specify 'current' or
'latest' for the raw file that we need.
We could write a script to download the html and then parse the raw file
URL, but that would require downloading a 5M file just to get the url of
a 1.5M files. :(
I don't see how we can give a checksum if the file is changing. We need
to let users decide which version they need.
I'd be interested in other ideas.
More information about the blfs-dev